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@ One-time logon means and methods for distributed computing systems. 

(g) Apparatus and methods of authenticating 
users in a distributed networked aimputing 
system (10), The system (10) may comprise a 
central server (12) embodiment that indudes a 
file (19) wherein IDs and encrypted psisswords 
(30) are stored, or a distributed system embodi- 
ment where IDs and encrypted passwcirds (30) 
ere stored (n files (19) at each reepectve com- 
puter in the system (10). A multiple logon prcv- 
cedure (16) and secure transport layer protocol 
ana used with a user's communication software 
and network connmunlcatlon software. When a 
user desires to use a particular computer (13), 
logon requests are processed by the multiple 
logon procedure (16) and it accesses the stored 
file (19) that contains the user's ID anc encryp- 
ted password, decr/pts the password (30), ac- 
cesses the remote computer (13), and logs the 
user onto that computer (13). In the» central 
server system all IDs and encrypted passwords 
(30) are stored on a single computer (ttie server 
(12)) that controls access to the entire distri- 
buted system (10). Once access is granted to a 
particular user, nonencrypted passwords (30) 
are transmitted to the remote computars (13). 
since the server (12) controls the entire- system. 
In the distributed version, passwonJ llles (19) 
are stored In all networked computers (13). and 
once a user logs on to a computer (11), if the 
user wishes to use services at a seccmd com- 
puter (13), the authentication Infomiation is 
forwarded to the second computer (13) using 
the secure transport layer protocol to protect Its 
integrity, and after receiving the aulJioniication 
information, it Is compared with authentication 
information for the same user storeiJ in the 
second computer (13), If the authentication in- 
fonmation matches, the user is logged onto the 
second computer (13). 
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BACKGROUND 

The present invention relates generally to dislrib- 
uted computersystems, and more particularly, to si lo- 
gon system and method far use with distributed land 
networked computer systems. 

Tlie prior art relating to controlling user access in 
a distributed processing environment is to request 
users to separately log on to each computer that [)ro- 
vides needed services. This practice has many draw- 
backs. The user must remember many passwords, if 
passwords are different on each computer. P£iss- 
words transmitted in the clear (without security) riay 
easily picked up by others. Repeated logon requests 
are inconvenierrt to the user. The use of a bypass 
scheme by the user to speed up the process cciutd 
also increase the security risk to the system. 

More specifically, in a distributed processing en- 
vlronmenc, a user must repeatedly provide user iden- 
tification (ID) codes and passwords to gain access to 
various services iocated throughout the system. For 
instance, a user must fog on to a workstation, than log 
on to new computers when new services are neec ed. 
The repetition of these logon sequences is very in- 
convenientforusers. Moreover, rf user passwords are 
not the same on all computers in the system, U5.ers 
must remember many different passwords. To red uce 
the possibility of using a wrong password, the user 
might write them down (perhaps posted somewhere 
close to the workataaon). This is not a secure prac- 
tice. In addition, a user who is in a hurry to obtain in- 
formation from a particular resource may not wisln to 
go through the repeated logon process. He or she 
may find ways to bypass the security procedures 
used in the system, which creates a system w<iak- 
ness. Another weakness is that, to logon remotely, 
the user ID code and password must be trsnsmF:ted 
to the remote computer. Without a secure path fi-om 
the user's workstation to the remote computer, siny- 
one having access to the system could use a network 
analyzer to discover the password of the user. 

Legion Technologies Corporation has a logon 
pnaduct known aTPX The TPX pnaductis a IBM main- 
frame product for a processing environment known as 
MVS/VM. It provides automated logon to IVIVS ses- 
sions, after an initial authandcatton to the end i:ys- 
tem. The user contacts the host computer and is au- 
thenticated. The host computer contains an access 
Ilstof usera and services, and grants access based on 
this list Only the host computer needs to be modined 
andfaflures are localized to one host computer. How- 
ever, this Implementation Is a homogeneous solution, 
with very limited communications available between 
IBM host servers (TELNET 3270). Itis also a relatively 
expensive architecture to implsmenL 

Another approach is known as the Kerberos uys- 
tem. In this system, a Kerberos server Is provided and 
the user and an application on the host computer au- 



thenticate themselves to the server. The user soft- 
ware requests an auchentication token from the host 
application, and both the hosts and user authentica- 
tion tokens are sent to the server. The server re- 
5 sponds with a token only readable by the user and 
host computer. The contents of the token is used to 
protect the data throughout the duration of ha con- 
nection. This system provides for authendcation at 
the application level, and provides for key distribution 
10 mechanism. However, this system requires a host 
server application modification. The server makes 
possible a single point failure mode. Also, a large Ini- 
tial transaction time Is required. 

It is therafora an objective of the present inven- 
ts tion to provide a safe and user-transparent method 
and means for authenticating users In a distributed 
computing system that does not require special pur- 
pose hardware development. 

20 SUMMARY OF THE INVENTION 

In order to provide for the above and other objec- 
tives and features, the present invention provides for 
a system and method of authenticating users in a dis- 

25 tributed computing system. The present Invention in- 
cludes a file stored at a predetermined location* such 
as a file server or workstation, that indudes each 
user ID and encrypted passwonds for each computer 
of the system. The user passwords stored in the file 

90 are encrypted prior to storage. Any convenient en- 
cryption algorithm may be employed, such as by us- 
ing the well-known NSA standard encryption algo- 
rithm. 

The present Invention Includes a multiple logon 

3S procedure that comprises a firmware or software rou- 
tine that is used in the conrununicatlon protocol of the 
system between e communication software program 
on a user's computer and a network communication 
software program on each of the other computers in 

40 the system. The present invention employs a secure 
transport layer protocol that permits secure file trans- 
fer between computers of the distributed system. 
Thus when a user desires to use e particular comput- 
er, such as a remote database, for example, a request 

4^ Initiated by the user is processed by the multiple lo- 
gon procedure which accesses the stored file that 
contains the user ID codes and encrypted passwords, 
accesses the remote computer, and then enters the 
user's ID code and password for that computer. This 

so Is done automatically, and the process is transparent 
to the user and otherusers of the system. In essence, 
the remote computer interacts with the multiple logon 
procedure and its user 10 coda and password file, the 
multiple logon procedure decrypts the encrypted 

55 password for the particular requested computer and 
logs the user onto that computer using the ID code 
and decrypted password. 

The present invention thus requires each ueertn 
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log onto the distributgd computing syslem only a 'sin- 
gle time and sllaws the user to access all available 
computers connected to the network. Several ver- 
sions of the present invention are provided and in- 5 
elude a system having a central server on which the 
IDs and encrypted passwords are stored, and a "dis- 
tributed system where IDs and encrypted passwc-nJs 
ana stored at each respective computerin the systism. 

In operation, upon completing a single logon pro- 
cedure at the user's workstation, the user is not re- 
quired to provide his ID code or password again vi/lnen 
services are needed from another computer wllhin 
the same distributed system, A uniqua feature of tha 
central server system of the present invention are 
that all IDs and encrypted passwords are stored cm a 
single computer which controls access to the ertira 
distributed and networked system. Once accesis is 
granted toa parb'cularuser, nonencrypted passwords 
are transmitted to the remote computers, since the 
server provides for control of tha antirs networked 
system. Unique features of the distributed system of 
the present Invention are that (1) the same pasewml 
flies are stored In all networked computers in the ^lys- 
tem. (2) once a user logs onto one computer, if the 
userwiahes to use services at a second computerin 
the system, the authentication informabon is for- 
warded to the second computer by using a secure 
transport layer protocol for pnatecting its integrity, and 
(3) after it is received, the authentication information 
is comparBd with authentication informah'on for the 
same user stored In the second computer. If the au- 
thentication information matches, the user is auto- 
matically logged onto the second computer. 

With the one-time logon system and method of 
the present im^ention, a user only needs to logon to a 
single workstation. Aftervrard, authentication infor- 
mation Is forwarded by the secure communication 
protocol to other networked computers where tneir 
secure protocols automatically log the user cmto 
those computers. The authentication informaUon 
transmitted In the network Is protected by the secnjre 
protocol and communication path to prevent others 
from recording tha authentication information for later 
logon attempts, to prevent others from Impersonating 
another user, and to guarantee the integrity of the au- 
thentication information. 

The present Invention Is useful with any net- 
worked systems where a user has access to reso^jrc- 
es located on remotely located computers. To protect 
these resources from unauthorized access, iiser 
must authenticate himself before access attempts are 
permitted. Because the authentication system and 
method of the present Invention requires the usa of 
end-system to end-system protection, a secure tnins- 
port layer protocol may be employed. 

The present invention is very robust and majr be 
easily configured to work with mainframes and work- 
stations by simply registering a user at the multiple lo- 



gon server. The present invention thus provides a 
safe and user- transparent method to authenticate 
users in a distributed computing environment. 

BRIEF DESCRIPTION OF THE DRAWINGS 



The various features and advantages of tha pres- 
ent invenBon may be more readily understood with 
10 reference to Che following detailed description taken 
in conjunction with the accompanying drawings, 
wherein like reference numerals designate like atruo- 
tural elements, and in which: 

Fig. 1 illustrates a portion of a distributed comput- 
15 er system that employs a one-time logon system 
and method in accordance with the principles of 
the present Invention that Is embodied in a cen- 
tral multiple logon server; 
Fig, 2 showe an example of a typical user com- 
20 puting session utilizing the computer system of 
Fig. 1 employing tha system and method of the 
present invention; 

Fig. 3 shov/s a flow chart of a processing method 
in accordance with the principles of the present 
25 invention; and 

Fig. 4 Is niuetrates a second embodiment of a dis- 
tributed computer system that employs the sys- 
tem and mathod of tha present invention. 

30 DETAILED DESCRIPTION 

Referring to the drawing figures, Fig. 1 illustrates 
a portion of a distributed computer system 1 0 that em- 
ploys the multiple logon aspects of the present inven- 
35 tion that is Bmbodiad in a central multiple logon sen/er 
12. The distributed computer system 10 includes a 
user workstation 11 . such as a personal computer, for 
example, the multiple logon server 12, and a remote 
host computer 13. The user workstation 11, multiple 
40 logon server 1 2, and remote host computer 13 are in- 
terconnected by way of a network 20. 

The user workstation 11 includes various soft- 
ware and firmware programs, and in particular has a 
user application program 14. such as a terminal emu- 
^ later program that is routinely used by the user. Ae 
part of the software running on the user workstation 
11, a communication protocol such as TCP-IP stack 
15 is used to connect each of the processing nodes 
(workstations 11 and host computers 13) together. In 
so accordance with the principles of the present Inven- 
tion, a multiple logon pnatocol 16 (software interrupt 
routine) Is "Inserted" between the user application 
program 14 and the TCPMP stack 15. The multiple lo- 
gon protocol 1 6 forms part of the TCP-IP stack 15. As 
55 a consequence, the user epplication program 1 4 does 
not have to be modified, A server application program 
17 and server TCP-IP stack 18 are provided as part 
of the multiple logon server 12. The server applica- 
tion program 17 Is employed as an Interfacs to a da- 
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tabase 19, for example, stored on a disk drive 21 at- 
tached to the server 1Z The database 19 stores th© 
ID codes and encrypted passwords. The remote host 
computer 13 also includes a remota respond er appli- 
cation program 22 and an associated host TCF'-IP 
stack 23, that permits the user workstation 11 to in- 
terface with ttie remote host computer 13. 

Fig. 2 shows an Bxampls of a typical user ajrrv- 
puting session utilizing the computer system 1Ci of 
Fig. 1 employing the present Invention. A local user 
operates the workstation 11 and enters the appropri- 
ate user ID and password 30. Communication be- 
tween the workstation 11 and a multiple logon server 
12 Is established and authentication of the user ID 
and password is attempted and if correct authentica- 
tion Is achieved. This permits an open session to oc- 
cur where In the user may use software programs and 
services provided by the multiple logon server 13. At 
a later time. If the user desires to log onto a remote 
host 13, the th© user ID and password stored on the 
server 12 are employed to log onto the remote host 
13. This is dona automatically by means of the a)nrj- 
munication software located on th© workstation 11, 
the server 12, and the remote host computer 13. Ac- 
cordingly, access to the remote host computer 13 is 
obtain without the additional requirement of InpuD^ng 
a user ID and password of the remote host computer 
13. 

Rg. 3 shows a detailed flow chart of a processiing 
method 40 in accordance with the principles of the 
present invention that is implementable in th© work- 
station 11. the server 12, and the host computer 13 
of the computer system 1 0 of Fig. 1 . The relevant por- 
tions of the procsssing method 4-0 that are used in 
each of these computers are identified within an ap- 
propriate dashed box (11, 12, 13) TTie appropriate ac- 
tion of ttie user (USERP) or the multiple logon prcce- 
dure (MLP) of the present invention are identified. 
Other identifiers are indicated and will be described 
below. 

At the workstation 11 , the user inttiates a request 
41 , such ae a TELNET request, for example, for laer- 
vlces provided by the remote h ost computer 1 3. Ai;er- 
vlce authorization request 42 (SARO) is genarsied 
and transmitted to the server 12 using the communi- 
cation software package running on the workstarlon 

11 and the server 12. A decision is made in the server 

12 (in decision box 43) whether the user is connected 
to the multiple logon server 12. If the user is connect- 
ed, then authorization Information comprising an au- 
thorization message is sent 44 back to the multipUi lo- 
gon procedure In the workstation 11 which analyzes 
45 the tranamified message, and sends a sen'Ice 
connect request 46 to th© remotB host computer 13. 
The remote host computer 13 then accepts the re- 
quest 47 and connects the user workstab'on 11 to it 
Once connection is made, data exchanged betwtsen 
the workstation 11 and remote host computer 13 are 



Q fijnction of the specific transmission protocol used 
by the software applications running on each com- 
puter. Then the remote host computer 1 3 requests en- 

5 try of a user ID and password 48 from the workstation 
11. The multiple logon procedure then sends the ap- 
propriate user ID and password 49 to the host com- 
puter 13. Once service is connected 50, a host com- 
puter session is established 51, and the host remote 

10 computer 1 3 is able to provide the requested services 
to the workstation 11. 

If at decision box 43 it is determined that the user 
workstation 11 is not yet connected to the multiple lo- 
gon server 12. then an authorizat'on request 52 

15 (SARE) Is made to the workstation 11 . The authori- 
zation request 52 is processed by the multiple logon 
procedure 16 which retrieves 53 the appropriate user 
ID and password from the database 19 and sends 54 
a connect request (MCRQ) to the server 12. The ser- 

20 ver 12 In turn sends 55 the connect request (MORE) 
to the workstation 11. The connect request (MORE) 
is then processed by the multiple logon procedure 16 
to determine if the request should be accepted (box 
56). If the request Is accepted, the multiple logon pro- 

25 cedurs 16 loops back to the send service authoriza- 
tion request box 42 to wait for a new request If the re- 
quest Is not accepted, Che multiple logon procedure 
16 rejects 57 the user and loops to the entry point 
waiting for the user to initiate an appropriate service 

30 request 

Fig. 4 is illustrates a second embodiment orf a dis- 
tributed computer system 10a that employs the sys- 
tem and method of the present invention. The system 
10a eliminates the multiple logon server 12 of Fig. 1 

35 and incorporates a secure communication path 20a 
as part of the network20 that connects a secure user 
workstation 11 to the remote host computer 13. In op- 
eration, at the user workstation 11, a user enters a 
user identification (ID) code and password 30 In order 

40 to tog onto the workstation 11, A password encryption 
routine 31 is employed to encrypt the password 30. 
The ID code and encrypted password 30 are com- 
pared against the ID code end encrypted passwords 
stored in the workstation 11. The routine 31 employs 

A3 a database Ida containing the user IDs and encrypt- 
ed passwords that are used for comparison to the ID 
and password 30 entered by the user. 

Upon entry of the correct ID and password 30, 
access to the workstation 11 is granted. A secure 

50 communication software program 32 is provided that 
Interfaces to the remote host computer 13 over th© 
secure communication path 20a. A similar secure 
communication software program 35 Is provided on 
the remote host computer 13. A logon routine 33 Is 

55 provided that requests the remote host computer 13 
to log the user onto the remote host computer 13. The 
logon routine 33 communicates with an authentica- 
tion routine 34 on the remote host computer 13 that 
authenticates and logs the user onto the remote host 
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computer 13 upon receipt of the appropriata rgquost 
This routine 24 employs a database 19b containim) all 
user IDs and encrypted passwords that are used fbr 
comparison to the ID code and password 30 forward- 
ed over the secure communication path 20a. 

The prosentsystem and method requires that the 
computara in the distributed processing environment 
use substantially the same one-way encryption algo- 
rithm for encrypting passwords. An indrvlduaJ user is 
assigned a singia password fbr the entire system 10. 
The encrypted password for the user la the sama on 
all computers In the system 10, After the user suc- 
cessfully logs onto one computer, such as the wcirk- 
statlon 11, the encrypted password Is transmitted by 
a secure transfer protocol 22 to the rsmota host aam- 
puter 13 where, ifthe received ID code and encrypted 
password matches the ones stored at the remote l"iost 
computer 1 3, the user Is automatically logged on. The 
specific saqusnca of events required to implerrent 
tha present system and method are as follows. 

The user initially logs on to the workstation 11 by 
providing his identification (ID) code and password. 
The procedure 31 operating in the workstation 11 en- 
crypts the password and compares it to the encn^t- 
ed passwords stored in the database 19a. If they are 
the same, user is logged onto the workstation 11. 
When the user wishes to access information stored tn 
the remote computer 13, the procedure 33 requtists 
the secure communication procedure 32 to tnidalia a 
communication protocol session with the secure 
communication procedure 35. Both procedure 33 and 
pnscedure 32 are located within the workstation 11. 
which is a secure computer. Hence, only the auiho- 
rtzed users can utilize this secure communication 
path 20a The secure communication protocol 35 Is In 
the remote computer 13 which is also a secure com- 
puter. The secure communication protocol must offer 
protection from the workstation 11 (secure computer) 
to the remote computer 13 (secure computer). For ax- 
ample, a transport layer security protocol based on 
the ISO Draft international Standard well-known to 
those in the secure communications fald may be 
used for this secure communication service. 

After the socura communication path 20a has 
bean established, the procedure 33 tranamlts the 
identification (ID) code and encrypted passwoni of 
the user to the authentication procedure 34 in thei re- 
mote computer 13. The authentication procedure 34, 
in the remote computer 11 allows the user to loci on 
from the remote worlcstation 11. The authentication 
procedure 34 compares the encrypted password for 
the user with the one stored In the database 14 cou- 
pled to the remote computer 1 3. If they are the same, 
the user is permittsd to log onto the remote computer 
13. 

One specific embodiment of the present system 
1 0 corresponding to Fig. 1, fbr example, may include 
a multiple logon procedure (MLP) server 12, l:hat 
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stores the user ID codes and encrypted passwords 
and implements the MLP processing routine, that is 
hosted on a SUN Spancstation 1+ running SUNOS 

s 4.1.1. For this implementation, the MLP server 12 
may run as a daemon in a C-shell environment The 
host computer 13 (Sparcstation 1+) has an operation- 
al TCP/IP protocol installed. 

An application Interface program library (MLP 

10 API) is used that obtains authenticab'on information 
(user ID codes and passwords) from remote comput- 
ers other than the MLP server 12. These libraries 
may be developed and compiled for numerous com- 
puters, including a SUN computer running SUNOS 

16 4.1 .1 . compiled with K&.R compilers available on the 
SUN operating system, as a C library; an IBM/PC 
computer running a DOS operating system, using a 
Borland G++ 3.0 compiler, as a DOS library; a NEXT 
computer running a MACH operating system, com- 

20 piled with Objective C as an object-oriented Interface; 
and a Macintosh computer running System 7.0. com- 
plied with a Think C Compiler, as a Think C library. 

The prasant invention is most useful in a distrib- 
uted computing environment where many services 

2$ are located on separate computers connected by a 
network. For example, a user may log on to a work- 
station. When the use of a file server, electronic mail, 
or directory server is required, the user can access 
the information without logging onto each of the corn- 
so putars that provide those services. 

Thus there haa been described a new and Im- 
proved logon system and method for use with distrib- 
uted and networked computer systems. It is to be un- 
derstood that the above-described embodiment Is 

35 merely Illustrative of some of the many specific sm- 
t)odiments which represent applications of the princi- 
ples of the present invention. Clearly, numerous and 
other arrangements can be readily devised by those 
skilled in the art without departing from the scope of 
the invention. 



Claims 

45 1. A distributed computing ayetem (10a) character- 
ized by: 

a user com pu tar (11) comprising a commu- 
nication program (32) including a multiple logon 
procedure (16) that is adapted to communicate 

50 with a remote computer (13) and that employs a 

secure transport layer protocol that permits se- 
cure file transfer between computers of the dis- 
tributed computing system (10), and that com- 
prises a stored file (19a) including a user idenh- 

55 fication code and an encrypted password (30) 

that permits access to the remote computer (1 3) 
from the user computer (11); 

a remote computer (13) comprising a com- 
munication program (35) that is adapted to re- 
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spond the the communication program (32) on 
tha user computer (11) and that employs the se- 
cure transport layer protocol (16), and that wm- 
prises a stored file (19b) including a user identi- 
fication code and an encrypted password (30) 
that permits access to the remote computer ("13); 

a network (20) Interconnecting the user 
computsr (11 ) and the remote computer (13); 

and wherein a service request entered 
from the user computer (11) Is processed by the 
multiple logon procedure (16) which accssises 
the stored file that contains the user identifica- 
tion code and encrypted password (30), decrvpts 
tha encrypted password (30) of the remote ccim- 
puter (13), Iransfera the identification code nnd 
decrypted password (30) to the remote computer 
(13), and logs the user computer (11) onto the re- 
mote computer (13). 

St, The distributed computing system (1 0) of Claim 1 
which ia further characterized by; 

a multiple logon server (12) coupled to tha 
network (20) and inteiposed between the user 
computer (1 1 ) and the renrote computer (1 3) that 
comprises a multiple logon procedure (16) and 
communicatfon program that is adapted to a)m- 
municate with the user computer (11) and tha re- 
mote computer (13), and that comprises a stored 
file including a user identification code and an en- 
crypted password that permits acceas to the re- 
mote computer (13) from the user computer ('II), 
and that employs the secure transport layer pro- 
tocol. 

3. The distributed computing system (1 0) of Claim 1 
wherein the multiple logon procedure (16) per- 
formed in the multiple logon server (12) is ctiar- 
actertzed by the steps of: 

for each user, encrypting user passwords 
(30) for each computer in the distributed comput- 
ing system (10); 

storing a file (19) on a predetermined aim- 
puter of the network Chat comprises each user 
identification code and encrypted paaswands 
(30) Tor all computers In the distributed computing 
system (10); 

processing service requests (42) for sjer- 
vlces provided by a selected computer In the s.ys- 
tam (10) by means of a secure transport layer 
protocol that permits secure file transfer between 
computers in the dtslributed system (10); 

processing the service requests (42) us- 
ing a multiple logon procedure (16); 

accessing the stored file (1 9) that con tsiins 
the user Identification codes and encrypted pass- 
words (30); 

accessing the remote computer (13) land 
entering a user identification code and paseword 



ro 



(30) for that computer (13); 

and wherein the remote computer (13) in- 
teracts with the multiple logon procedure (16) 
and user identification coda and password file 
(19), and the multiple logon procedure (18) de- 
crypts the encrypted password (30) for the par- 
ticular requested computer and logs the user onto 
that computer (13). 



4. The distributed computing system (10) of Claim 2 
wherein the multiple logon procedure (16) per- 
formed in the multiple logon server (12) are char- 
acterized by tha steps of: 

for each user, encrypting user passwords 
(30) for each computer in the distributed comput- 
ing system (1 0); 

Storing a file (19) on a predetermined com- 
puter of the network that comprises each user 
20 identification code and encrypted passwords 
(30) for all computers in the distributed computing 
system (10); 

processing service requests (42) for ser- 
vices provided by a selected computer (13) in the 
25 system by means of a secure transport layer pro- 

tocol that permits secure file transfer between 
computera in the distributed system (10): 

procassinQ the service requests (42) us- 
ing a multiple logon procedure (16): 
$0 accessing the stored file (1 9) that contains 

the U3er identification codea and encrypted pass- 
words (30); 

accessing the remote computer (13) and 
enters a user Identification code and password 
35 (30) for that computer (1 3); 

and wherein the remote computer (13) in- 
teracts with the multiple logon procedure (16) 
and user identification code and password file 

(19) , and the multiple logon procedure (16) de- 
^0 crypts the encrypted password (30) for the par- 
ticular requested computer (13) and logs tha user 
onto that computer (13). 

5. A method of authenticating users In a distributed 
4e computing aystem (10) comprising a plurality of 

computers Interconnected by way of a network 

(20) , said method comprising the steps of: 

for each user, encrypting user passwords 
(30) for each computer In the distributed comput- 
50 ing system (1 0); 

storing a file (19) on a predetermined com- 
puter of the network that comprises each user 
Identification code and encrypted passwords 
(30) for all computere in Che disb-ibuted computing 
ss system (10); 

procesalng service requests (42) for ser- 
vices provided by a selected computer (1 3) in the 
system (10) by means of a secure transport layer 
pnatocol that permits secure file transfer between 
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computara in the distributed system (10); 

processing the service requests (42) us- 
ing a multiple logon procedure (16); 

accessing the stored file (19) thatconta.Ins 5 
the user idendficalion codes and encrypted pass- 
words (30); 

accessing the remote computer (13) ond 
enters a user identification cade and pesswQrd 
for that computer, io 

and wherein the remote computer (13) In- 
teracts with the multiple logon procedure (16) 
and user identtflcatlon code and password File 
(19), and the multiple logon procedure (16) de- 
crypts the encrypted password (3D) for the piar- is 
ticular requested computer (14) and logs the user 
onto that computer (13). 

6. A method of authenticating users in a distributed 
computing system (10) comprising a plurality' of 2o 
worlcstations (11) and remots computers (13) in- 
terconnected by way of a network (20) and a sier- 
ver (12) interposed between the workstations 
(11 ) and the remote computers (13), said metliod 
comprising the steps of: 2S 

storing a file (19) on the server (12) that 
comprises each user identification code and en- 
crypted passwords (30) for all computers in the 
distributed computing system (10); 

providing a predetermined multiple locjon so 
procedure (16) that operates on a workstalion 
(11 ) that Is adapted to Interface between a wcirk- 
station (11) and a plurality of remote computers 
(13); 

using the multiple logon procedure (1 6) to 35 
generate a service request (42) at the worta;ta- 
tion (11) for a service available at a remote aim- 
puier (13) and transmit the service request (42) 
to ttie server (12) using a predetermined commu- 
nication protocol; -«> 

determining whether a user is connected 
to the server (12), and if the user is connected to 
the server (12), transmitting an authorizalion 
message (44) to the workstation (11); 

using the multiple logon procedure (1 6) to 4g 
send a service connect request (46) from the 
workstation (11) to the remote computer (131 to 
connect the workstation (11) to the remote aim- 
puter (13); 

requesting (48) entry of a user ID «nd so 
password (30) from the workstadon (11); 

using the multiple logon procedure (16) to 
send (49) an appropriate user ID and password 
(30) from the workstation (11) to the remote ctim- 
putsr (13) to establish connection therebetween; 55 

if the user workstahon is not connected to 
the server (1 2)^ then the server (1 2) requests au- 
thentication (52) fifom the workstation (11); 

using the multiple logon procedure (16) to 



process the authorization request (52) and re- 
trieve (53) an appropriate user ID and password 
(30) from the file (19) and send a connect request 
(54) to the server (12); 

upon receipt of the proper user ID and 
password (30), the server (12) sends a service 
connect message (55) co the workstation and 
connection is established therebetween; 

if the service request Is accepted, the mul- 
tiple logon pnocedure (16) waits for a new re- 
quest; 

rf the service request is not accepted, the 
multiple logon procedure (18) rejects the user 
and waits Tor the user to initiate an appro prfata 
service authorization request (42). 
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